Release DateNov 03, 2009 |
Severityhigh |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attempt to exploit a code execution vulnerability in McAfee Remediation Agent.The vulnerability is located in the "enginecom.dll" ActiveX control through misuse of the "DeleteSnapshot" method. It may allow remote attackers to execute arbitrary code in vulnerable systems. |
Affected ProductsMcAfee Remediation Agent 4.5.0.41 |
Recommended ActionsSet the kill bit for the affected ActiveX control.The progid of the affected ActiveX control is Enginecom.imagineLANEngine.1 |
Coverage IPS
VCM |
